$ rpki-client -vvf repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa File: 3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa (raw, json) Hash identifier: si3UT934/NRLgAYON+Ujh8e+UMIufqsEHNO6+x+2+uw= Subject key identifier: CE:88:68:6F:10:7A:A5:DC:04:A3:F4:0A:EC:22:1D:25:55:05:E1:62 Certificate issuer: /CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Certificate serial: 4FE438F00A6E090BD683042AC0465304FEAEF299 Authority key identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer Subject info access: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa Signing time: Wed 01 May 2024 09:00:01 +0000 ROA not before: Wed 01 May 2024 08:55:01 +0000 ROA not after: Wed 30 Apr 2025 09:00:01 +0000 asID: 142351 IP address blocks: 103.169.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.crl rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 07:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e4:38:f0:0a:6e:09:0b:d6:83:04:2a:c0:46:53:04:fe:ae:f2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Validity Not Before: May 1 08:55:01 2024 GMT Not After : Apr 30 09:00:01 2025 GMT Subject: CN=CE88686F107AA5DC04A3F40AEC221D255505E162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e0:d0:6d:6b:54:d6:6d:29:79:ae:0c:6d:ea: 15:41:18:43:37:4c:85:91:a6:fa:66:ac:b7:c5:69: 38:1d:62:22:57:d4:3a:73:39:f3:20:68:eb:13:c9: d4:f8:24:5d:ee:20:26:eb:78:bb:42:d4:d3:cb:d4: c9:64:f0:52:d0:f9:e0:65:09:f0:7d:2b:51:85:cb: 92:8e:e5:87:cf:b4:ef:da:eb:eb:a8:7b:3e:e4:9c: 03:bf:7d:25:40:12:dd:0d:59:8a:63:2e:fe:12:9d: 08:c8:06:a5:3f:90:ad:c0:f4:69:2d:60:c1:44:32: 36:83:58:7b:d2:f4:33:f2:9b:ac:7b:03:3f:78:ed: 23:15:a2:14:40:13:8c:ca:7e:c1:d4:68:4f:74:54: 8c:aa:b3:d3:a7:3b:96:66:8f:fd:93:2e:a8:5c:a8: 66:8d:bd:1e:85:f5:5e:d2:e8:15:51:03:e3:22:8b: 15:b1:e5:4d:c7:3e:c2:aa:6b:42:d4:eb:75:86:63: c1:3f:db:63:5c:49:87:dc:26:67:2f:65:92:5e:44: 09:f6:a0:05:e7:65:4e:99:7f:46:84:9d:61:a1:eb: 02:e3:80:cc:61:3f:96:7e:63:bf:d4:5f:7c:a0:d9: 01:ae:00:94:05:fe:59:e5:d4:ad:89:ed:78:78:d4: 8a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:88:68:6F:10:7A:A5:DC:04:A3:F4:0A:EC:22:1D:25:55:05:E1:62 X509v3 Authority Key Identifier: keyid:D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/3130332e3136392e3139382e302f32342d3234203d3e20313432333531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.198.0/24 Signature Algorithm: sha256WithRSAEncryption 28:10:85:d5:e7:f8:2e:f5:d7:8f:07:cd:c4:20:19:c0:b8:96: 20:53:65:77:b2:f7:15:0c:0c:5c:ce:14:31:11:40:e8:44:fc: 91:06:12:cd:34:09:41:07:01:39:f4:9d:06:9e:c5:d6:2b:57: f2:d6:77:eb:63:4b:83:49:72:31:f3:9e:57:70:84:b9:93:f4: 0c:06:e9:82:06:f9:63:1e:e7:ab:98:aa:ec:30:e0:c5:f5:31: 28:64:1a:bd:b6:07:1e:87:c0:8f:21:6c:ec:68:dc:bf:4d:c6: 31:d7:dd:9c:f0:9f:db:43:3c:8a:d1:0d:a9:08:2f:e7:01:6d: 2e:29:bf:11:f3:fa:22:69:82:b9:86:f7:a5:56:fb:9d:bc:a4: 35:8c:ad:bc:96:3b:e8:b3:9c:98:e9:45:46:ba:89:d0:96:c8: 02:d3:7b:8f:ed:0b:55:3c:ce:55:15:dd:04:c2:23:bc:82:20: fa:45:a4:f0:81:ce:43:60:79:b3:df:80:5c:84:35:2e:bb:22: c8:4e:8d:5d:48:8c:a0:d7:6b:86:c8:04:d2:47:c1:15:2d:5b: 67:fc:30:f2:32:47:ba:15:3d:1a:08:ed:d1:fa:39:a2:c2:1f: 00:ed:d2:03:89:db:31:d3:a2:98:46:69:30:23:03:67:3f:56: 99:f7:9b:2e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUT+Q48ApuCQvWgwQqwEZTBP6u8pkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDcyODZENUY1QjlBREQ0Q0MxNjZBRDMyNTE5NjkyRjBD ODkwMkIyOTAeFw0yNDA1MDEwODU1MDFaFw0yNTA0MzAwOTAwMDFaMDMxMTAvBgNV BAMTKENFODg2ODZGMTA3QUE1REMwNEEzRjQwQUVDMjIxRDI1NTUwNUUxNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY4NBta1TWbSl5rgxt6hVBGEM3 TIWRpvpmrLfFaTgdYiJX1DpzOfMgaOsTydT4JF3uICbreLtC1NPL1Mlk8FLQ+eBl CfB9K1GFy5KO5YfPtO/a6+uoez7knAO/fSVAEt0NWYpjLv4SnQjIBqU/kK3A9Gkt YMFEMjaDWHvS9DPym6x7Az947SMVohRAE4zKfsHUaE90VIyqs9OnO5Zmj/2TLqhc qGaNvR6F9V7S6BVRA+MiixWx5U3HPsKqa0LU63WGY8E/22NcSYfcJmcvZZJeRAn2 oAXnZU6Zf0aEnWGh6wLjgMxhP5Z+Y7/UX3yg2QGuAJQF/lnl1K2J7Xh41Ip7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzohobxB6pdwEo/QK7CIdJVUF4WIwHwYDVR0j BBgwFoAU1yhtX1ua3UzBZq0yUZaS8MiQKykwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTI2MDY0MS1iY2UyLTQ0NWMtOWRlNS0zNzBhNzg3Zjk1MzAvMC9ENzI4NkQ1RjVC OUFERDRDQzE2NkFEMzI1MTk2OTJGMEM4OTAyQjI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDcyODZENUY1QjlBREQ0Q0MxNjZBRDMyNTE5NjkyRjBDODkw MkIyOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MjYwNjQxLWJjZTItNDQ1Yy05 ZGU1LTM3MGE3ODdmOTUzMC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM1MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqcYwDQYJ KoZIhvcNAQELBQADggEBACgQhdXn+C71148HzcQgGcC4liBTZXey9xUMDFzOFDER QOhE/JEGEs00CUEHATn0nQaexdYrV/LWd+tjS4NJcjHznldwhLmT9AwG6YIG+WMe 56uYquww4MX1MShkGr22Bx6HwI8hbOxo3L9NxjHX3Zzwn9tDPIrRDakIL+cBbS4p vxHz+iJpgrmG96VW+528pDWMrbyWO+iznJjpRUa6idCWyALTe4/tC1U8zlUV3QTC I7yCIPpFpPCBzkNgebPfgFyENS67IshOjV1IjKDXa4bIBNJHwRUtW2f8MPIyR7oV PRoI7dH6OaLCHwDt0gOJ2zHTophGaTAjA2c/Vpn3my4= -----END CERTIFICATE-----Generated at Sun Jun 2 07:02:56 2024 by rpki-client on console-fra.rpki-client.org